Privacy Policy

Pursuant to Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016.

Described here are the methods of management of the site www.palazzoconfalonieridalisca.it -hereafter site- with reference to the processing of personal data of the users who consult it. This is a document of a general nature that informs about the criteria of the proper processing of personal data carried out on or through the site. The information regarding the individual services the user will use, drawn up in accordance with Article 13 of Regulation 679/2016/EU on data protection -hereafter Regulation)- , can be consulted on the website in the specific sections and can be found at the offices of the owner.

This information is provided pursuant to Article 13 of the General Data Protection Regulation – Regulation- to those who interact with the web services of the site and does not include processing carried out on other sites that may be consulted by the user through links on the site itself. Users are invited to read this policy carefully before submitting any kind of personal information.

The owner of the processing of personal data

Following the consultation of this site may be processed data relating to identified or identifiable persons -Interested from now on user- . The owner of the processing of personal data is KOGI SRL -hereafter owner-. As of today’s date, all information concerning the owner, together with the updated list of designated data processors and system administrators, can be found at Palazzo Lisca Confalonieri in via 4 Spade civic 2, 29 – 37122 Verona

Purposes, lawfulness of processing, types of data and criteria used in order to determine the retention period of personal data

Browsing data

Navigation on the site involves the acquisition of certain personal data whose transmission is implicit in the use of Internet communication protocols (navigation data). This is information that is not collected to be associated with identified users, but which by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used in submitting the request to the server on which the site is allocated or which manages the provision of the requested services, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the users’ computer environment.

Listed below are the purposes for which the user’s personal data will be processed:

• use of the site;
• any statistics on the use of the service (most visited pages, number of visitors by time slot or daily, geographical areas of origin, etc.);
• any checks on the proper functioning of the services offered.

The user’s browsing personal data are retained for the period necessary to achieve the purposes for which they are collected and in any case no longer than 2 years, except for the time necessary to comply with requests received from the Judicial Authority for purposes of defense and/or state security and/or prevention, detection or repression of crimes or to comply with requests received from the Guarantor Authority for the Protection of Personal Data.

The lawfulness of the processing of personal data is based on the need to pursue the legitimate interest of the owner (Article 6.1 letter f) of the Regulations).

Contact/Information Request Section

The personal data provided by the user who accesses the Contact/Information Request Section by sending a message will be used for the sole purpose of performing the requested service. The optional, explicit and voluntary sending of electronic mail to the addresses indicated on the site, by its very nature, entails the subsequent acquisition of the sender’s e-mail address, necessary to respond to requests, as well as any other personal data included in the message.

The lawfulness of the processing of personal data bases on the need to execute a contract to which the user is a party or to execute pre-contractual measures taken at the request of the same (art. 6.1 letter b) of the Regulations)

The user’s personal data are kept for the time necessary to provide the requested service or for the time necessary to handle any appeals or litigation.

Methods of the processing of personal data

The processing of your personal data takes place at the headquarters of the data controller, or should it be necessary, at the headquarters of any external Data Processors specifically designated pursuant to Article 28 of the Regulations or at the subjects indicated in the paragraph “Communication and dissemination of personal data”. Personal data are processed using automated tools. Specific security measures are observed to prevent loss, illicit and/or incorrect use, unauthorized access of data. The processing of personal data is carried out to the extent that this is strictly necessary for the performance of the functions for which the service is requested, excluding processing when the purposes pursued can be achieved by means of anonymous data or methods that allow the user to be identified only when necessary.

Communication and dissemination of personal data

Personal data should it be necessary, may be communicated (by this term meaning giving knowledge of it to one or more determined subjects) to subjects whose right to access the data is recognized by national and European Union legal provisions. Personal data are in no case disseminated, by which term is meant the giving of knowledge in any way to a plurality of undetermined subjects, without prejudice to legal obligations.

Changes to the information notice

The data controller reserves the right to make changes to this policy at any time by publicizing them to the user on this page. Therefore, please consult this page frequently to be constantly updated.

Rights of the data subject (user)

Notice is hereby given that, at any time, the user may exercise the following rights:

• Right to receive in a structured, commonly used and machine-readable format personal data concerning him/her provided to a data controller and has the right to transmit such data to another data controller without hindrance from the data controller to whom he/she provided it;
• Right to obtain access to his or her personal data;
• Right to obtain the rectification of one’s personal data where it does not conflict with current legislation on the storage of such data;
• Right to obtain the deletion of one’s personal data where it does not conflict with current legislation on the retention of such data;
• Right to obtain the restriction of processing of one’s personal data;
  right to object at any time for reasons related to your particular situation, to the processing of your personal data.

The user may exercise the above rights with a request addressed without formalities to the personal data controller by hand delivery, traditional mail, registered letter, fax or by e-mail to the following address: KOGI SRL, headquartered at Via Isonzo 11, 37126 Verona. PEC: kogi@pec.it

To facilitate the exercise of these rights, the Italian Data Protection Authority has prepared a specific form that can be downloaded from www.garanteprivacy.it.

Right to lodge a complaint (Art. 13.2.d Regulation 679/2016/EU).

Users are advised that they have the right to lodge a complaint with a supervisory authority (especially the Italian Data Protection Authority www.garanteprivacy.it).

Cookies

The specific information describing the use of cookies carried out by the site is available and accessible at the document “Cookie policy”.